Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

How to set an AuthorizationRequestCustomizer on a DefaultOAuth2AuthorizationRequestResolver?

Tags:

java

spring

auth0

spring-security

spring-security-oauth2

While trying to get Spring Security OAuth2 5.4.2 to work with custom scopes and Auth0 in authorization code flow. I stumbled over a small detail which I have no simple solution for.

To request custom scopes Auth0 requires a user to provide an audience parameter. The redirect URI is created in org.springframework.security.oauth2.client.web.DefaultOAuth2AuthorizationRequestResolver#resolve(javax.servlet.http.HttpServletRequest, java.lang.String, java.lang.String).

This process can be amended by using a AuthorizationRequestCustomizer, however I do not see any means to inject a customizer and the DefaultOAuth2AuthorizationRequestResolver is not registered as a bean or at least I do not grasp how it is accessible.

like image 709
Andreas Avatar asked Oct 26 '25 03:10

Andreas

1 Answers

You can implement custom OAuth2AuthorizationRequestResolver and then add it to your spring security configuration

.oauth2Login(req->
          req.authorizationEndpoint()
         .authorizationRequestResolver(new YourCustomAuthorizationRequestResolver)
 )
like image 92
ActivX Avatar answered Oct 27 '25 16:10

ActivX
Sign in to Comment

Related questions

How is mutex internally implemented
Many To One relation inside Embeddable , Hibernate
How get android cpu model name?
Is it really polymorphism?
Spring batch JdbcPagingItemReader not initializing properly because it is not closing properly
CXF JAVA message Truncated
Is there a way to make JPA ignore invalid types of enum?
Camel Java DSL Route with Choice proceeds only for last condition

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!